This vulnerability is a UAF (Use-After-Free) vulnerability discovered in the file /media-server/libsip/src/uac/sip-uac-subscribe.c

ireader / media-server

RTSP/RTP/RTMP/FLV/HLS/MPEG-TS/MPEG-PS/MPEG-DASH/MP4/fMP4/MKV/WebM

MIT License

2.98k stars 1.06k forks source link

This vulnerability is a UAF (Use-After-Free) vulnerability discovered in the file /media-server/libsip/src/uac/sip-uac-subscribe.c #330

Closed yinluming13579 closed 4 months ago

yinluming13579 commented 4 months ago

Hello, I am a graduate student specializing in static analysis of programs. Recently, while using a static analysis tool to detect issues in open-source projects, I found several defects in the project. The description of the defects can be found at the following link:https://github.com/yinluming13579/media-server_defects/blob/main/media-server_1.md

ireader commented 4 months ago

yinluming13579 commented 4 months ago

It seems to be a false alarm. Thank you for your response!